Security news aggregator

Latest coverage for Microsoft

Microsoft software and cloud platforms underpin enterprise systems, so vulnerabilities and security advisories can affect identity, data, and operations.

29 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Microsoft is a technology company whose Windows, Microsoft 365, Azure, identity services, and developer tools form a widely deployed enterprise computing ecosystem. Its security relevance spans endpoint and server software, cloud control planes, authentication, collaboration data, and the update mechanisms used to maintain them.

Security news under this tag commonly concerns vulnerabilities requiring patching, exploits against exposed services, identity or token compromise, and misconfiguration of cloud permissions or authentication policies. Practitioners should verify affected versions and exposure, apply updates or mitigations, enforce multifactor authentication and least privilege, and monitor relevant audit logs. Incidents involving Microsoft-hosted identities or data may require rapid session and credential containment, investigation across cloud and on-premises systems, and assessment of privacy or regulatory obligations.

Showing 20 most recent headlines of 29 Filtered view
Bank Info Security 2 years, 3 months ago

China Is Using AI to Influence Elections, Microsoft Warns

Chance of AI-Generated Content Affecting Results Appears to Remain Low - for NowChina-backed attackers are continuing to refine their use of content generated using artificial intelligence tools, including audio deepfakes and video news anchors, to sow disruption and influence elections in the U.S., Taiwan, India and beyond, security researchers at Microsoft warn.

Bank Info Security 2 years, 3 months ago

Microsoft, Okta, CyberArk Lead Workforce Identity Rankings

OneLogin Departs Forrester's Leaderboard as User Experience Takes Center StageMicrosoft, Okta and CyberArk remained atop Forrester's workforce identity rankings, while OneLogin tumbled from the leaders' spot. The shift toward digital platforms and growing adoption of cloud services have been pivotal in driving the evolution of workforce identity platforms.

The U.S. Department of Homeland Security's Cyber Safety Review Board (CSRB) has released a scathing report on how Microsoft handled its 2023 Exchange Online attack, warning that the company needs to do better at securing data and be more truthful about how threat actors stole an Azure signing key. [...]

Bank Info Security 2 years, 3 months ago

Report Slams Microsoft for Security Blunders in Chinese Hack

Hack Targeting Top Government Officials ‘Was Preventable,’ Scathing Report SaysThe independent Cyber Safety Review Board published a scathing report that recommended an overhaul of Microsoft’s security infrastructure and said the tech giant’s operational and strategic decisions led to the successful Chinese hacking campaign targeting top U.S. government officials.

CISA calls for 'fundamental, security-focused reforms' to happen ASAP, delaying work on other software A review of the June 2023 attack on Microsoft's Exchange Online hosted email service – which saw accounts used by senior US officials compromised by a China-linked group called "Storm-0558" – has found that the incident would have been preventable save for Microsoft's lax infosec culture and sub-par cloud security precautions.…

CISA calls for 'fundamental, security-focused reforms' to happen ASAP, delaying work on other software A review of the June 2023 attack on Microsoft's Exchange Online hosted email service – which saw accounts used by senior US officials compromised by a China-linked group called "Storm-0558" – has found that the incident would have been preventable save for Microsoft's lax infosec culture and sub-par cloud security precautions.…

Bank Info Security 2 years, 3 months ago

Rubrik IPO Filing Reveals Sales Acceleration, Growing Losses

In First Cybersecurity IPO Filing Since 2021, Rubrik Describes Bond With MicrosoftRubrik became the first security company to pursue an initial public offering since 2021, revealing increased sales, mounting losses and a heavy reliance on three channel partners. Rubrik said 76% of its $627.9 million in sales for the fiscal year ended Jan. 31 flowed through three channel partners.

Bank Info Security 2 years, 3 months ago

Sam Altman Out as OpenAI Startup Fund Owner

Altman's Role as Fund's Sole Owner Was Meant to Be Temporary, OpenAI SaysOpenAI CEO Sam Altman no longer owns the company's $325 million venture capital fund launched with backing from Microsoft. Altman's role as the fund's sole owner raised eyebrows although OpenAI said the arrangement was always meant to be temporary.

Loading more headlines...